16 matches found
EUVD-2018-17784
Malware in sbrugna...
EUVD-2018-17783
Malware in sbrugna...
Silex SD-320AN and GE MobileLink Remote Code Execution Vulnerability
Silex SD-320AN is a serial device server from Silex Technology, Japan.GE MobileLink GEH-SD-320AN is an ECG analysis system from General Electric GE. A security vulnerability exists in Silex SD-320AN version 2.01 and earlier and GE MobileLink GEH-SD-320AN GEH-1.1 and earlier, which stems from the...
Silex SD-320AN and GE MobileLink Unauthorized Operation Vulnerability
Silex SD-320AN is a serial device server from Silex Technology, Japan. GE MobileLink GEH-500 is an electrocardiogram analysis system from General Electric GE. A security vulnerability exists in Silex SX-500 and GE MobileLink GEH-500 versions 1.54 and earlier, which arises from the program's failu...
CVE-2018-6020
In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...
CVE-2018-6021
Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...
Authentication flaw
In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...
CVE-2018-6021
Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...
CVE-2018-6020
In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...
Remote code execution
Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...
CVE-2018-6021
Silex SD-320AN version 2.01 and prior and GE MobileLinkGEH-SD-320AN version GEH-1.1 and prior have a system call parameter that is not properly sanitized, which may allow remote code execution...
CVE-2018-6020
In Silex SX-500 all versions and GE MobileLinkGEH-500 version 1.54 and prior, authentication is not verified when making certain POST requests, which may allow attackers to modify system settings...
CVE-2018-6020
CVE-2018-6020 affects Silex SX-500 series and GE MobileLink (GEH-500) devices (version 1.54 and earlier). The vulnerability is an improper authentication on certain POST requests, allowing an attacker to modify system settings. Public documentation from ICS-CERT/ENISA details that these products ...
CVE-2018-6021
CVE-2018-6021 affects Silex SD-320AN (2.01 and earlier) and GE MobileLink GEH-SD-320AN (GEH-1.1 and earlier). Root cause: system call parameters not properly sanitized, enabling OS command injection and remote code execution. Publicly documented in ICSMA-18-128-01; CVSSv3 base score 7.4. Impact: ...
Silex Technology SX-500/SD-320AN or GE Healthcare MobileLink (Update B)
1. EXECUTIVE SUMMARY CVSS v3 7.4 ATTENTION : Exploitable Remotely / Low skill level to exploit / Public exploits are available Vendors : Silex Technology, GE Healthcare Equipment : SX-500, SD-320AN, MobileLink Vulnerabilities : Improper Authentication, OS Command Injection 2. UPDATE INFORMATION...
Samsung MobileLink - External URLs, Possible privilege escalation, Runtime command execution vulnerabilities
HackApp vulnerability scanner discovered that application Samsung MobileLink published at the 'play' market has multiple vulnerabilities...